SCALE-MAMBA Software

As of June 2022 we are no longer actively maintaining this software. We may post occasional updates, but there will be no new development of new functionality and so forth.

This web page is for the SCALE-MAMBA MPC software system developed by the KU Leuven. It details the background of the software, how to access it, and the email list associated with the software.

Secure Computation Algorithms from LEuven : SCALE
Multiparty AlgorithMs Basic Argot : MAMBA

Before proceeding, please note that the software is provided "AS IS". We have no ability to provide support or help with your use of it. We will try to help you, but providing such help is not our day job.

The Software
Historical Background
Email List
License
Authors, Funders and Thanks

The Software

You can download the software from the git repository https://github.com/KULeuven-COSIC/SCALE-MAMBA The documentation for the software is available as a main PDF file. We suggest reading the PDF document first.

Historical Background

The SCALE-MAMBA system arises out of four main papers, called BDOZ, SPDZ, TinyOT and HSS in much of the literature.

BDOZ: Semi-Homomorphic Encryption and Multiparty Computation : Rikke Bendlin and Ivan Damgard and Claudio Orlandi and Sarah Zakarias .
SPDZ: Multiparty Computation from Somewhat Homomorphic Encryption : Ivan Damgard and Valerio Pastro and Nigel P. Smart and Sarah Zakarias .
TinyOT: A New Approach to Practical Active-Secure Two-Party Computation : Jesper Buus Nielsen and Peter Sebastian Nordholt and Claudio Orlandi and Sai Sheshank Burra
HSS:Low Cost Constant Round MPC Combining BMR and Oblivious Transfer: Carmit Hazay and Peter Scholl and Eduardo Soria-Vazquez

The BDOZ paper introduced the idea of using linear homomorphic encryption to perform pre-processing, as well as the idea of ensuring an efficient online protocol using information theoretic MACs. The SPDZ paper outlined a much more efficient online phase using a different form of MAC, and used somewhat homomorphic encryption for the pre-processing. The TinyOT paper is focused on two party computation, uses BDOZ style MACs but uses OT as the pre-processing phase. The HSS paper presents efficient n-party garbling based upon the TinyOT protocol. Over the years these protocols have been extended by various people, more details on these improvements can be found in the papers below.

The Full-Threshold LSSS based sub-system basically uses SPDZ with TopGear as the pre-processing engine. The Q2 based LSSS sub-system uses either the method Maurer (see below for the paper) or the method of Keller, Rotaru, Smart and Wood (see below for the paper) to perform the offline phase, and then uses the paper of Smart and Wood (again see below) to do the online phase.

The SCALE-MAMBA system has grown out of the earlier SPDZ system developed at the University of Bristol, and a lot of the code-base is the same. However, SCALE-MAMBA aims to be a complete system, and not a set of components which the user needs to magically compose together. Therefore SCALE-MAMBA is closer to a production system, and as such it is not that well suited to getting specific benchmarks out of it for specific components (e.g. offline times on their own or online times on their own). This is still possible, just more tricky and needs a deeper understanding of the whole system. We hope that this will encourage more honest reporting of run-times in the literature.

In particular the old SPDZ system is no longer supported!

A large body of research work has gone into the system. As well as the papers detailed above the system builds on the following papers:

2019/1300 ( PDF )
Actively Secure Setup for SPDZ
Dragos Rotaru and Nigel P. Smart and Titouan Tanguy and Frederik Vercauteren and Tim Wood
2019/974 ( PDF )
Zaphod: Efficiently Combining LSSS and Garbled Circuits in SCALE
Abdelrahaman Aly and Emmanuela Orsini and Dragos Rotaru and Nigel P. Smart and Tim Wood
2019/354 ( PDF )
Benchmarking Privacy Preserving Scientific Operations
Abdelrahaman Aly and Nigel P. Smart
2019/207 ( PDF )
MArBled Circuits: Mixing Arithmetic and Boolean Circuits with Active Security
Dragos Rotaru and Tim Wood
2019/035 ( PDF )
Using TopGear in Overdrive: A more efficient ZKPoK for SPDZ
Carsten Baum and Daniele Cozzo and Nigel P. Smart
2018/467 ( PDF )
Error-Detecting in Monotone Span Programs with Application to Communication Efficient Multi-Party Computation
Nigel P. Smart and Tim Wood
2017/1230 ( PDF )
Overdrive: Making SPDZ Great Again
Marcel Keller and Valerio Pastro and Dragos Rotaru
2017/492 ( PDF )
Reducing Communication Channels in MPC
Marcel Keller and Dragos Rotaru and Nigel P. Smart and Tim Wood
2017/189 ( PDF)
Global-Scale Secure Multiparty Computation
Xiao Wang and Samuel Ranellucci and Jonathan Katz
2016/505 ( PDF )
MASCOT: Faster Malicious Arithmetic Secure Computation with Oblivious Transfer
Marcel Keller and Emmanuela Orsini and Peter Scholl
2015/901 ( PDF )
A Unified Approach to MPC with Preprocessing using OT
Tore Kasper Frederiksen and Marcel Keller and Emmanuela Orsini and Peter Scholl
2015/546 ( PDF )
Actively Secure OT Extension with Optimal Overhead
Marcel Keller and Emmanuela Orsini and Peter Scholl
2015/472 ( PDF )
High Performance Multi-Party Computation for Binary Circuits Based on Oblivious Transfer
Sai Sheshank Burra and Enrique Larraia and Jesper Buus Nielsen and Peter Sebastian Nordholt and Claudio Orlandi and Emmanuela Orsini and Peter Scholl and Nigel P. Smart
2014/137 ( PDF )
Efficient, Oblivious Data Structures for MPC
Marcel Keller and Peter Scholl
2014/101 ( PDF )
Dishonest Majority Multi-Party Computation for Binary Circuits
Enrique Larraia and Emmanuela Orsini and Nigel P. Smart
2013/143 ( PDF )
An architecture for practical actively secure MPC with dishonest majority
Marcel Keller and Peter Scholl and Nigel P. Smart
2012/642 ( PDF )
Practical Covertly Secure MPC for Dishonest Majority – or: Breaking the SPDZ Limits
Ivan Damgard and Marcel Keller and Enrique Larraia and Valerio Pastro and Peter Scholl and Nigel P. Smart
( PDF )
Secure Multi-Party Computation made Simple.
Ueli Maurer

In addition in the following papers we used SPDZ/SCALE in experiments. The lessons learned have fed back into the design of the overall system.

2020/214 ( PDF )
Thresholdizing HashEdDSA: MPC to the Rescue
Charlotte Bonte and Nigel P. Smart and Titouan Tanguy
2018/1045 ( PDF )
MPC Joins the Dark Side
John Cartlidge and Nigel P. Smart and Younes Talibi Alaoui
2018/1034 ( PDF )
Adding Distributed Decryption and Key Generation to a Ring-LWE Based CCA Encryption Scheme
Michael Kraitsberg and Yehuda Lindell and Valery Osheter and Nigel P. Smart and Younes Talibi Alaoui
2017/1190 ( PDF )
EPIC: Efficient Private Image Classification (or: Learning from the Masters)
Eleftheria Makri and Dragos Rotaru and Nigel P. Smart and Frederik Vercauteren
- Promo Video
- Demo Video
2017/378 ( PDF )
Faster Secure Multi-Party Computation of AES and DES Using Lookup Tables
Marcel Keller and Emmanuela Orsini and Dragos Rotaru and Peter Scholl and Eduardo Soria-Vazquez and Srinivas Vivek
2016/542 ( PDF )
MPC-Friendly Symmetric Key Primitives
Lorenzo Grassi and Christian Rechberger and Dragos Rotaru and Peter Scholl and Nigel P. Smart
2015/467 ( PDF )
The Oblivious Machine - or: How to Put the C into MPC
Marcel Keller
2012/262 ( PDF )
Implementing AES via an Actively/Covertly Secure Dishonest-Majority MPC Protocol
Ivan Damgard and Marcel Keller and Enrique Larraia and Christian Miles and N.P. Smart

Email List Stuff

We have a mailing list for people using the software, which is the Google Group spdz@googlegroups.com. To post to this group you need to sign up and be approved.

Archive/Join/Leave

We still use the name SPDZ for the email list so as to avoid setting up a new one for the SCALE-MAMBA system.

License

The license for the software can be found here. This is basically the BSD two clause license. However, we request that any use of the software for commercial purposes should be reported to the Nigel Smart. This is for impact and usage monitoring purposes only; so we can tell the original funders as to what impact their funding has had both academically and commercially.

Authors, Funders and Thanks

The following people have contributed to the code base

Abdelrahaman Aly, Benjamin Coenen, Kelong Cong, Karl Koch, Marcel Keller, Dragos Rotaru, Oliver Scherer, Peter Scholl, Nigel P. Smart, Titouan Tanguy, Tim Wood The following people have contributed to the mathematics underlying the code base

The FHE part of the code is a specialisation of the FHE code used in the Gentry, Halevi, Smart paper Homomorphic Evaluation of the AES Circuit, which was written by Halevi and Smart. Thus some of this code looks very similar to some of the code that is currently in the HELib library of Halevi and Shoup. This is because both HELib and our FHE code are derived from the same parent code base.

Thanks need to be extended to all our co-authors, and others in the community who have provided moral support and intellectual ideas. A special thanks goes to the team at Aarhus University (Damgard, Nielsen and Orlandi). We also thank the team at Galois working on the Jana project with us, for providing extensive feedback and testing. We also thank the team at Cosmian for helping develop the SCALE-assembler (scasm).

Finally the work on the project has been funded by a number of parties; including DARPA, EPSRC, ERC, FWO, IARPA and The Royal Society of London.